5-20 Oracle Fusion Middleware Interoperability Guide for Oracle Web Services Manager

5.6 Kerberos with Message Protection

This section describes how to implement kerberos with message protection in the following interoperability scenarios: ■ Configuration Prerequisites for Interoperability on page 5-20 ■ Configuring Microsoft WCF.NET 3.5 Client and Oracle WSM 11g Web Service on page 5-20

5.6.1 Configuration Prerequisites for Interoperability

Perform the following prerequisite steps: 1. Configure the Key Distribution Center KDC and Active Directory AD. For more information, see the section To Configure Windows Active Directory and Domain Controller the domain controller can serve as KDC at http:docs.sun.comappdocsdoc820-3746gisgm?l=ena=view . 2. Set up the Kerberos configuration file krb5.conf in c:\winnt as shown in Example 5–1 . Example 5–1 Sample Kerberos Configuration File [logging] default = c:\log\krb5libs.log kdc = c:\log\krb5kdc.log admin_server = c:\log\kadmind.log [libdefaults] default_realm = MYCOMPANY.LOCAL dns_lookup_realm = false dns_lookup_kdc = false default_tkt_enctypes = rc4-hmac default_tgs_enctypes = rc4-hmac permitted_enctypes = rc4-hmac kdc = hostname [realms] MYCOMPANY.LOCAL = { kdc = hostname:portnumber admin_server = hostname:portnumber default_domain = domainname } [domain_realm] .domainname = MYCOMPANY.LOCAL domainname = MYCOMPANY.LOCAL [appdefaults] pam = { debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false }

5.6.2 Configuring Microsoft WCF.NET 3.5 Client and Oracle WSM 11g Web Service

To configure Microsoft WCF.NET 3.5 client and Oracle WSM 11g Web service, perform the steps described in the following sections:

5.6.2.1 Configuring Oracle WSM 11g Web Service

1. Create a Web service application. 2. Copy the following policy: wss11_kerberos_with_message_protection_service_ policy. Interoperability with Microsoft WCF.NET 3.5 Security Environments 5-21 3. Edit the policy settings to set Algorithm Suite to Basic128Rsa15. 4. Attach the policy to the web service. For more information about attaching the policy at deployment time using Fusion Middleware Control, see Attaching Policies to Web Service Clients in Oracle Fusion Middleware Security and Administrators Guide for Web Services. 5. Deploy the application.

5.6.2.2 Configuring Microsoft WCF.NET 3.5 Client